paper shredder

2 min read

Can a covered entity hire a business associate to dispose of PHI?

According to the Department of Health and Human Services’ FAQ about the Disposal of Protected Health Information, “a covered entity may, but is not required to, hire a business associate to appropriately dispose of protected health information (PHI)...

Read More
surveymonkey sign

1 min read

Can I use SurveyMonkey and be HIPAA compliant? (2025 update)

Based on our research, SurveyMonkey is HIPAA compliant because it meets the requirements set by the U.S. Department of Health and Human Services...

Read More
two people shaking hands

1 min read

What is a business associate?

A business associate is a person or entity that performs functions or activities on behalf of, or provides services to, a covered entity (such as a...

Read More
cisa logo

2 min read

How the CISA email and web security guidance contribute to email practices

The Cybersecurity and Infrastructure Security Agency (CISA) provides comprehensive recommendations that align closely with the requirements of the...

Read More
blue digital shield

3 min read

The relationship between HIPAA Privacy Rule and state public records laws

According to the National Institute of Health, “In general, the Privacy Rule overrides (or preempts) State laws relating to the privacy of health...

Read More
postage app logo

1 min read

Is PostageApp HIPAA Compliant? (2025 update)

Based on our research, PostageApp is not HIPAA compliant because it does not meet the requirements set by the U.S. Department of Health and Human...

Read More
theranest logo

2 min read

Is TheraNest HIPAA compliant? (2025 update)

Based on our research, TheraNestis HIPAA compliant because it meets the requirements set by the U.S. Department of Health and Human Services (HHS) to...

Read More
cruise ship

4 min read

Do cruise ships have to comply with international data privacy laws?

Cruise ships must comply with international data privacy laws based on where they operate, collect passenger data, and process transactions, meaning...

Read More
Warby Parker logo

1 min read

Warby Parker hit with $1.5M HIPAA fine over cybersecurity breach

The U.S. Department of Health and Human Services has imposed a $1.5 million penalty on Warby Parker for HIPAA violations following a cybersecurity...

Read More
gotomeeting logo

1 min read

Is GoToMeeting HIPAA compliant? (2025 update)

Based on our research, GoToMeeting is HIPAA compliant because it meets the requirements set by the U.S. Department of Health and Human Services (HHS)...

Read More
grasshopper logo

1 min read

Is Grasshopper HIPAA compliant? (2025 update)

Based on our research, Grasshopperis not HIPAA compliant because it does not meet the requirements set by the U.S. Department of Health and Human...

Read More
Image of a certificate with a gold emblem.

2 min read

Certifications for healthcare privacy officers

In a recent MedTrainer’s article, Amber Ratcliffe writes, “In the rapidly evolving healthcare industry, adherence to regulations and ethical...

Read More
Image of laptop with lock near it.

2 min read

Can healthcare privacy officers delegate duties to staff members?

It’s important for those in healthcare management to successfully distribute responsibilities while ensuring patient data remains secure.

Read More